diff --git a/SECURITY.md b/SECURITY.md index f5dbcb48..a64c5af9 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -32,7 +32,7 @@ key pair generation. Other operations or attack vectors may also be vulnerable t For a sophisticated attacker observing just one operation with a private key will be sufficient to completely reconstruct the private key. -Fixes for side-channel vulerabilities will not be developed. +Fixes for side-channel vulnerabilities will not be developed. Please also note that any Pure-python cryptographic library will be vulnerable to the same side-channel attacks. This is because Python does not provide side-channel secure primitives diff --git a/docs/source/glossary.rst b/docs/source/glossary.rst index 4aebb532..7b8e5b10 100644 --- a/docs/source/glossary.rst +++ b/docs/source/glossary.rst @@ -79,7 +79,7 @@ Glossary ``str`` (only on python2), ``bytes``, ``bytearray``, ``array.array`` and ``memoryview`` of those objects. Please note that ``array.array`` serialisation (converting it to byte - string) is endianess dependant! Signature computed over ``array.array`` + string) is endianness dependent! Signature computed over ``array.array`` of integers on a big-endian system will not be verified on a little-endian system and vice-versa. diff --git a/src/ecdsa/curves.py b/src/ecdsa/curves.py index 38e3a758..1aa2e982 100644 --- a/src/ecdsa/curves.py +++ b/src/ecdsa/curves.py @@ -570,7 +570,7 @@ def curve_by_name(name): """Select a curve based on its name. Returns a :py:class:`~ecdsa.curves.Curve` object with a ``name`` name. - Note that ``name`` is case-sensitve. + Note that ``name`` is case-sensitive. :param str name: Name of the curve to return, like ``NIST256p`` or ``prime256v1``